ModSecurity is a plugin for Apache web servers which acts as a web application layer firewall. It is employed to prevent attacks toward script-driven websites by using security rules which contain certain expressions. In this way, the firewall can prevent hacking and spamming attempts and protect even websites that are not updated on a regular basis. For example, a number of unsuccessful login attempts to a script administrative area or attempts to execute a certain file with the purpose to get access to the script will trigger specific rules, so ModSecurity will stop these activities the second it detects them. The firewall is extremely efficient as it screens the entire HTTP traffic to a website in real time without slowing it down, so it can easily stop an attack before any damage is done. It furthermore keeps a very comprehensive log of all attack attempts which includes more info than conventional Apache logs, so you could later analyze the data and take further measures to boost the security of your websites if necessary.
ModSecurity in Shared Hosting
We offer ModSecurity with all shared hosting solutions, so your web applications shall be resistant to malicious attacks. The firewall is turned on as standard for all domains and subdomains, but if you would like, you'll be able to stop it through the respective area of your Hepsia CP. You could also activate a detection mode, so ModSecurity will keep a log as intended, but won't take any action. The logs which you will discover inside Hepsia are incredibly detailed and feature data about the nature of any attack, when it happened and from what IP, the firewall rule that was triggered, etc. We employ a set of commercial rules that are regularly updated, but sometimes our admins add custom rules as well in order to efficiently protect the Internet sites hosted on our servers.
ModSecurity in Semi-dedicated Hosting
ModSecurity is a part of our semi-dedicated hosting packages and if you decide to host your Internet sites with us, there shall not be anything special you'll have to do since the firewall is turned on by default for all domains and subdomains you add using your hosting Control Panel. If required, you could disable ModSecurity for a certain Internet site or activate the so-called detection mode in which case the firewall shall still work and record data, but shall not do anything to stop potential attacks against your sites. In depth logs shall be available in your Control Panel and you will be able to see which kind of attacks took place, what security rules were triggered and how the firewall dealt with the threats, what Internet protocol addresses the attacks came from, and so forth. We employ 2 types of rules on our servers - commercial ones from a firm which operates in the field of web security, and custom ones which our administrators sometimes add to respond to newly discovered risks in a timely manner.
ModSecurity in VPS Web Hosting
ModSecurity is pre-installed on all virtual private servers that are set up with the Hepsia hosting Control Panel, so your web apps will be secured from the moment your server is ready. The firewall is switched on by default for any domain or subdomain on the Virtual Private Server, but if required, you can deactivate it with a click of your mouse from the corresponding section of Hepsia. You can also set it to operate in detection mode, so it shall maintain an extensive log of any possible attacks without taking any action to stop them. The logs can be found inside the very same section and provide information about the nature of the attack, what IP it originated from and what ModSecurity rule was triggered to stop it. For maximum security, we employ not simply commercial rules from a business working in the field of web security, but also custom ones which our admins add personally in order to respond to new threats that are still not dealt with in the commercial rules.
ModSecurity in Dedicated Servers Hosting
All our dedicated servers that are set up with the Hepsia hosting Control Panel include ModSecurity, so any app you upload or install shall be secured from the very beginning and you will not need to worry about common attacks or vulnerabilities. An independent section within Hepsia will enable you to start or stop the firewall for any domain or subdomain, or activate a detection mode so that it records information regarding intrusions, but doesn't take actions to stop them. What you will find in the logs can easily allow you to to secure your websites better - the IP address an attack came from, what website was attacked and in what way, what ModSecurity rule was triggered, and so on. With this data, you could see if an Internet site needs an update, if you should block IPs from accessing your web server, and so on. Aside from the third-party commercial security rules for ModSecurity that we use, our administrators add custom ones as well if they discover a new threat that's not yet a part of the commercial bundle.